CNNVD-202601-2505 Information
CNNVD ID
CNNVD-202601-2505
Related CVE
- CNNVD Published: 2026-01-14
Description (Chinese)
Huawei EMUI和Huawei HarmonyOS都是中国华为(Huawei)公司的产品。Huawei EMUI是一款基于Android开发的移动端操作系统。Huawei HarmonyOS是一个操作系统。提供一个基于微内核的全场景分布式操作系统。 Huawei EMUI和Huawei HarmonyOS存在安全漏洞,该漏洞源于媒体库模块存在权限验证绕过,可能影响服务机密性。以下版本受到影响:HarmonyOS 4.3.1版本、4.3.0版本、4.2.0版本、4.0.0版本、3.1.0版本、3.0.0版本和EMUI 15.0.0版本、14.2.0版本、14.0.0版本、13.0.0版本。
Description (English)
Huawei EMUI and Huawei HarmonyOS are both products of Huawei, China. Huawei EMUI is a mobile-end operating system based on Android. Huawei HarmonyOS is an operating system. Provide a global scenario distribution operating system based on microkernels. There is a security loophole between Huawei EMUI and Huawei HarmonyOS, which stems from the fact that the media library module has been bypassed by the authorization to do so, which may affect the confidentiality of services. The following versions were affected: HarmonyOS 4.3.1, 4.3.0, 4.2.0, 4.0.0, 3.1.0, 3.0.0 and EMUI 15.0.0, 14.2.0, 14.0.0 and 13.0.0.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
华为
Published
2026-01-14
Last Modified
2026-02-24
References
https://consumer.huawei.com/en/support/bulletin/2026/1// https://consumer.huawei.com/en/support/bulletinvision/2026/1/ https://consumer.huawei.com/en/support/bulletinwearables/2026/1/
Patch
https://consumer.huawei.com/en/support/bulletin/2026/1//
Share on: